diff --git a/playbooks/openshift-apps/fasjson.yml b/playbooks/openshift-apps/fasjson.yml
index a283d81b09..fad1821388 100644
--- a/playbooks/openshift-apps/fasjson.yml
+++ b/playbooks/openshift-apps/fasjson.yml
@@ -61,6 +61,13 @@
     service: HTTP
     host: "fasjson{{ env_suffix }}.fedoraproject.org"
 
+  # Session secret key
+  - role: openshift/secret-file
+    app: fasjson
+    secret_name: session-key
+    key: session.key
+    privatefile: "fasjson/session.{{env}}.key"
+
   - role: openshift/imagestream
     app: fasjson
     imagename: fasjson
diff --git a/roles/openshift-apps/fasjson/templates/deploymentconfig.yml b/roles/openshift-apps/fasjson/templates/deploymentconfig.yml
index 8427d7abe0..6a1caed278 100644
--- a/roles/openshift-apps/fasjson/templates/deploymentconfig.yml
+++ b/roles/openshift-apps/fasjson/templates/deploymentconfig.yml
@@ -46,6 +46,10 @@ spec:
               readOnly: true
             - name: httpdir
               mountPath: /httpdir
+            - name: session-key
+              mountPath: /etc/fasjson-secret/session.key
+              subPath: session.key
+              readOnly: true
           env:
             - name: FASJSON_CONFIG_PATH
               value: "/etc/fasjson/fasjson.conf"
@@ -67,6 +71,9 @@ spec:
         - name: fasjson-config-volume
           configMap:
             name: fasjson-config
+        - name: session-key
+          secret:
+            secretName: session-key
         - name: keytab-http-volume
           secret:
             secretName: fasjson-keytab-http